{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-40212", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-10T15:32:11.199Z", "dateReserved": "2026-04-10T00:00:00.000Z", "datePublished": "2026-04-10T00:00:00.000Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Skyline", "vendor": "OpenStack", "versions": [{"lessThan": "5.0.1", "status": "affected", "version": "0", "versionType": "semver"}, {"status": "affected", "version": "6.0.0", "versionType": "semver"}, {"status": "affected", "version": "7.0.0", "versionType": "semver"}]}], "descriptions": [{"lang": "en", "value": "OpenStack Skyline before 5.0.1, 6.0.0, and 7.0.0 has a DOM-based Cross-Site Scripting (XSS) vulnerability in the console because document.write is used unsafely, which is relevant in scenarios where administrators use the console web interface to view instance console logs."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-10T15:32:11.199Z"}, "references": [{"url": "https://bugs.launchpad.net/skyline-console/+bug/2138575"}, {"url": "https://review.opendev.org/973351"}, {"url": "https://www.openwall.com/lists/oss-security/2026/04/09/30"}, {"url": "https://security.openstack.org/ossa/OSSA-2026-006.html"}], "x_generator": {"engine": "enrichogram 0.0.1"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-10T13:49:14.717690Z", "id": "CVE-2026-40212", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-10T13:49:25.488Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-40212", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-10T13:49:14.717690Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-10T13:49:21.633Z"}}], "cna": {"metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.4, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "LOW", "confidentialityImpact": "LOW"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "OpenStack", "product": "Skyline", "versions": [{"status": "affected", "version": "0", "lessThan": "5.0.1", "versionType": "semver"}, {"status": "affected", "version": "6.0.0", "versionType": "semver"}, {"status": "affected", "version": "7.0.0", "versionType": "semver"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://bugs.launchpad.net/skyline-console/+bug/2138575"}, {"url": "https://review.opendev.org/973351"}, {"url": "https://www.openwall.com/lists/oss-security/2026/04/09/30"}, {"url": "https://security.openstack.org/ossa/OSSA-2026-006.html"}], "x_generator": {"engine": "enrichogram 0.0.1"}, "descriptions": [{"lang": "en", "value": "OpenStack Skyline before 5.0.1, 6.0.0, and 7.0.0 has a DOM-based Cross-Site Scripting (XSS) vulnerability in the console because document.write is used unsafely, which is relevant in scenarios where administrators use the console web interface to view instance console logs."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-10T15:32:11.199Z"}}}, "cveMetadata": {"cveId": "CVE-2026-40212", "state": "PUBLISHED", "dateUpdated": "2026-04-10T15:32:11.199Z", "dateReserved": "2026-04-10T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-04-10T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "OpenStack Skyline before 5.0.1, 6.0.0, and 7.0.0 has a DOM-based Cross-Site Scripting (XSS) vulnerability in the console because document.write is used unsafely, which is relevant in scenarios where administrators use the console web interface to view instance console logs."}], "id": "CVE-2026-40212", "lastModified": "2026-04-13T15:02:06.187", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 2.7, "source": "cve@mitre.org", "type": "Secondary"}]}, "published": "2026-04-10T08:16:25.850", "references": [{"source": "cve@mitre.org", "url": "https://bugs.launchpad.net/skyline-console/+bug/2138575"}, {"source": "cve@mitre.org", "url": "https://review.opendev.org/973351"}, {"source": "cve@mitre.org", "url": "https://security.openstack.org/ossa/OSSA-2026-006.html"}, {"source": "cve@mitre.org", "url": "https://www.openwall.com/lists/oss-security/2026/04/09/30"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "cve@mitre.org", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,5.0.1)"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "6.0.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "7.0.0"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "product": "skyline", "vendor": "openstack"}], "analysis": {"en": {"generated_at": "2026-04-10T09:51:19.628172+00:00", "value": {"mitigation_remediation": ["Update to Skyline 5.0.1, 6.0.0, or 7.0.0 or later, which contains the XSS fix.", "If an upgrade is not feasible immediately, restrict console log access to trusted administrators only.", "If console logging is unnecessary, disable or remove the console log view feature to reduce exposure."], "summary": {"action": "Apply Patch", "impact": "Cross\u2011site scripting via the console interface"}, "threat_synthesis": {"affected_systems": "All Skyline releases older than 5.0.1, 6.0.0, and 7.0.0 are affected. Administrators should verify the version running in their environment and plan an update accordingly.", "description_and_impact": "OpenStack Skyline contains a DOM\u2011based Cross\u2011Site Scripting vulnerability caused by unsafe usage of document.write when rendering console logs. The flaw enables an attacker to inject and execute arbitrary JavaScript within the browser session of a logged\u2011in administrator, which could lead to credential theft, UI manipulation, or unauthorized actions against the OpenStack services.", "risk_and_exploitability": "The CVSS score of 5.4 indicates a moderate level of severity. EPSS information is not available and the vulnerability is not included in the CISA KEV catalog. Based on the description, the flaw requires an authenticated administrator who can access the console log view; no publicly available exploits are documented, so the ability to exploit depends on the administrator\u2019s access and the visibility settings of the console."}}}}, "created": "2026-04-13T12:51:52.263789+00:00", "title": "DOM-based Cross\u2011Site Scripting in OpenStack Skyline Console Logs", "updated": "2026-04-13T13:06:36.571566+00:00", "vendors": ["openstack", "openstack$PRODUCT$skyline"]}